Debian Local Security Checks : Debian Security Advisory DSA 618-1 (imlib)

Preis/Funktionszusammenfassung | Bestellen | Neue Anfälligkeiten | Vertraulichkeit | Anfälligkeiten Suche

Anfälligkeitssuche		Suche in 61204 CVE Beschreibungen und 32582 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.53718

Kategorie: Debian Local Security Checks

Titel: Debian Security Advisory DSA 618-1 (imlib)

Zusammenfassung: Debian Security Advisory DSA 618-1 (imlib)

Beschreibung: The remote host is missing an update to imlib
announced via advisory DSA 618-1.

Pavel Kankovsky discovered that several overflows found in the libXpm
library were also present in imlib, an imaging library for X and X11.
An attacker could create a carefully crafted image file in such a way
that it could cause an application linked with imlib to execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project identifies the following
problems:

CVE-2004-1025

Multiple heap-based buffer overflows.

CVE-2004-1026

Multiple integer overflows.

For the stable distribution (woody) these problems have been fixed in
version 1.9.14-2woody2.

For the unstable distribution (sid) these problems have been fixed in
version 1.9.14-17.1.

We recommend that you upgrade your imlib packages immediately.

Solution:
http://www.securityspace.com/smysecure/catid.html?in=DSA%20618-1

Querverweis: BugTraq ID: 11830
Common Vulnerability Exposure (CVE) ID: CVE-2004-1025
http://www.mandriva.com/security/advisories?name=MDKSA-2005:007
http://www.redhat.com/support/errata/RHSA-2004-651.html
http://www.securityfocus.com/bid/11830
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10786
Common Vulnerability Exposure (CVE) ID: CVE-2004-1026
Debian Security Information: DSA-628 (Google Search)
http://www.debian.org/security/2005/dsa-628
http://www.gentoo.org/security/en/glsa/glsa-200412-03.xml
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10771

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 32582 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Registrierung eines neuen Benutzers
Email:

Benutzerkennung:

Passwort:

Bitte schicken Sie mir den monatlichen Newsletter, der mich über die neuesten Services, Verbesserungen und Umfragen informiert.

Bitte schicken Sie mir eine Anfälligkeitstest Benachrichtigung, wenn ein neuer Test hinzugefügt wird.

Datenschutz

Anmeldung für registrierte Benutzer

Benutzerkennung:

Passwort:

Benutzerkennung oder Passwort vergessen?

Email/Benutzerkennung:

Test Kennung:	1.3.6.1.4.1.25623.1.0.53718
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 618-1 (imlib)
Zusammenfassung:	Debian Security Advisory DSA 618-1 (imlib)
Beschreibung:	The remote host is missing an update to imlib announced via advisory DSA 618-1. Pavel Kankovsky discovered that several overflows found in the libXpm library were also present in imlib, an imaging library for X and X11. An attacker could create a carefully crafted image file in such a way that it could cause an application linked with imlib to execute arbitrary code when the file was opened by a victim. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2004-1025 Multiple heap-based buffer overflows. CVE-2004-1026 Multiple integer overflows. For the stable distribution (woody) these problems have been fixed in version 1.9.14-2woody2. For the unstable distribution (sid) these problems have been fixed in version 1.9.14-17.1. We recommend that you upgrade your imlib packages immediately. Solution: http://www.securityspace.com/smysecure/catid.html?in=DSA%20618-1
Querverweis:	BugTraq ID: 11830 Common Vulnerability Exposure (CVE) ID: CVE-2004-1025 http://www.mandriva.com/security/advisories?name=MDKSA-2005:007 http://www.redhat.com/support/errata/RHSA-2004-651.html http://www.securityfocus.com/bid/11830 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10786 Common Vulnerability Exposure (CVE) ID: CVE-2004-1026 Debian Security Information: DSA-628 (Google Search) http://www.debian.org/security/2005/dsa-628 http://www.gentoo.org/security/en/glsa/glsa-200412-03.xml http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10771
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com